return new StandardSerializationPolicy(whitelistSer, whitelistDeser, typeIds, clientFields, shouldSerializeFinalFields);
@Override public boolean shouldSerializeFields(Class<?> clazz) { return isFieldSerializable(clazz, serializationWhitelist); }
@Override public void validateSerialize(Class<?> clazz) throws SerializationException { if (!isInstantiable(clazz, serializationWhitelist)) { throw new SerializationException( "Type '" + clazz.getName() + "' was not included in the set of types which can be serialized by this SerializationPolicy or its Class object could not be loaded. For security purposes, this type will not be serialized."); } } }
/** * Check both StandardSerializationPolicy and LegacySerializationPolicy */ @Override public boolean shouldDeserializeFields(Class<?> clazz) { return super.shouldDeserializeFields(clazz)||legacySerializationPolicy.shouldDeserializeFields(clazz); }
/** * Check both StandardSerializationPolicy and LegacySerializationPolicy * */ @Override public boolean shouldSerializeFields(Class<?> clazz) { return super.shouldSerializeFields(clazz)||legacySerializationPolicy.shouldSerializeFields(clazz); }
boolean throwedFromLegacySerializationPolicy = false; try{ super.validateSerialize(clazz); }catch(SerializationException e){ throwedFromStandardSerializationPolicy = true;
boolean throwedFromLegacySerializationPolicy = false; try{ super.validateDeserialize(clazz); }catch(SerializationException e){ throwedFromStandardSerializationPolicy = true;
@Override public void validateDeserialize(Class<?> clazz) throws SerializationException { if (!isInstantiable(clazz, deserializationWhitelist)) { throw new SerializationException( "Type '" + clazz.getName() + "' was not included in the set of types which can be deserialized by this SerializationPolicy or its Class object could not be loaded. For security purposes, this type will not be deserialized."); } }
@Override public boolean shouldDeserializeFields(Class<?> clazz) { return isFieldSerializable(clazz, deserializationWhitelist); }
return new StandardSerializationPolicy(whitelistSer, whitelistDeser, typeIds, clientFields, shouldSerializeFinalFields);
@Override public void validateDeserialize(Class<?> clazz) throws SerializationException { if (!isInstantiable(clazz, deserializationWhitelist)) { throw new SerializationException( "Type '" + clazz.getName() + "' was not included in the set of types which can be deserialized by this SerializationPolicy or its Class object could not be loaded. For security purposes, this type will not be deserialized."); } }
@Override public boolean shouldSerializeFields(Class<?> clazz) { return isFieldSerializable(clazz, serializationWhitelist); }
return new StandardSerializationPolicy(whitelistSer, whitelistDeser, typeIds, clientFields, shouldSerializeFinalFields);
@Override public void validateSerialize(Class<?> clazz) throws SerializationException { if (!isInstantiable(clazz, serializationWhitelist)) { throw new SerializationException( "Type '" + clazz.getName() + "' was not included in the set of types which can be serialized by this SerializationPolicy or its Class object could not be loaded. For security purposes, this type will not be serialized."); } } }
@Override public boolean shouldSerializeFields(Class<?> clazz) { return isFieldSerializable(clazz, serializationWhitelist); }
@Override public void validateSerialize(Class<?> clazz) throws SerializationException { if (!isInstantiable(clazz, serializationWhitelist)) { throw new SerializationException( "Type '" + clazz.getName() + "' was not included in the set of types which can be serialized by this SerializationPolicy or its Class object could not be loaded. For security purposes, this type will not be serialized."); } } }
@Override public boolean shouldDeserializeFields(Class<?> clazz) { return isFieldSerializable(clazz, deserializationWhitelist); }
@Override public void validateDeserialize(Class<?> clazz) throws SerializationException { if (!isInstantiable(clazz, deserializationWhitelist)) { throw new SerializationException( "Type '" + clazz.getName() + "' was not included in the set of types which can be deserialized by this SerializationPolicy or its Class object could not be loaded. For security purposes, this type will not be deserialized."); } }
@Override public boolean shouldDeserializeFields(Class<?> clazz) { return isFieldSerializable(clazz, deserializationWhitelist); }